Average Rating: Rate this article:

Twitter Hack 'Not the Work of Amateurs' By Jennifer LeClaire February 4, 2013 1:57PM     "Social media platforms are not immune to the IT Security challenges facing small. medium and large companies each and every day," said security researcher Chris Petersen of the Twitter hack. In essence, they face greater challenges attempting to protect not only the proprietary information on their users, but also mission-critical corporate info."   Related Topics Twitter Java Enterprise Security Oracle Hacking Data Security Latest News Reality TV's New Stars: Small Biz Soundbars Up the Ante on TV Sound Google Glass Raises Privacy Concerns Pentagon Gives iOS 6 Security OK Should Enterprises Skip Windows 8? The fallout from the Twitter hack is still, well, falling out. Twitter admitted on Friday that 250,000 of its user accounts may have been hacked. Who's to blame? Java? Chinese hackers? On the heels of The New York Times and The Wall Street Journal Chinese hacking revelations, Twitter said it also detected unusual access patterns that led it to identify unauthorized access attempts to Twitter user data . Twitter even shut down a live attack in progress. "This attack was not the work of amateurs, and we do not believe it was an isolated incident," said Bob Lord, Twitter's director of Information Security, writing in a blog post. "The attackers were extremely sophisticated, and we believe other companies and organizations have also been recently similarly attacked." Is Java to Blame? Paul Henry, a security and forensic analyst at Lumension, said the Twitter hack was an odd one. "There's not much information about it yet, so we don't know exactly what information the attackers got, but we do know that a whole bunch of people had to change their passwords," Henry said. "While there's been speculation that this was an organized attack, we don't know for certain, since very little information about the attack has been disclosed." Henry noted that there has also been speculation that Java might have played a role, but he doesn't believe that Java was a factor. Since Java is used to attack and compromise single users, he explained, it's unlikely that it would have been the vector for an attack compromising 250,000 users. Still, he said, the warnings about Java that have been circulating for the last month or so should be heeded. "Java is a flawed component and is one of the biggest attack vectors out there right now. Unfortunately, there's not much you can do to get around it, as many sites require it to function properly. Oracle has yet to fix many of its underlying flaws and we probably won't see a truly secure version of Java for another year or two. By then, I hope that developers have moved away from Java. Otherwise, the problem with Java is only going to get worse." Henry also echoed Twitter's advice to practice "good password hygiene." In addition to not using the same passwords across multiple sites and using a combination of letters -- capitalized and lower case -- numbers and symbols, he recommended that changing passwords regularly. A monthly change is ideal for best practices, he said, but changing your passwords quarterly at a minimum is a good idea." Follow the Money Chris Petersen, chief technology officer at LogRhythm, told us it should come as no surprise that network intrusion attempts are on the rise given hackers' continued success in monetizing their efforts that often times yield high returns. "Social media platforms are not immune to the IT Security challenges facing small. medium and large companies each and every day. In essence, they face greater challenges attempting to protect not only the proprietary information on their users, but also mission-critical corporate info as well," Petersen said. "Regardless of the level of hackers' sophistication, the best policy enterprises and blue-chip organizations can have in place includes continuous network monitoring. Detecting anomalous activity in its early stages is critical and often times the difference between fast containment and mitigation or longer-term, more severe consequences."   Tell Us What You Think Comment: Name: MJQ: Posted: 2013-02-20 @ 1:37pm PT "A monthly change is ideal for best practices, he said, but changing your passwords quarterly at a minimum is a good idea." There are some contrary ideas circulating. One basic argument is that requiring overly frequent password changes, prompts users to write them down and paste them on their monitor or in some other obvious location. If you set up passwords to expire monthly and then give say two weeks notice that passwords are going to expire, you give people at most half a month without having to think about a password change. A good read to a least start rethinking this can be found at: http://www.cerias.purdue.edu/site/blog/post/password-change-myths/ > Also Visit: iPad Info Center Billions of Bytes Mobile Device Now Apple Info Center TopTechWire.com Panasonic Toughbook® mobile computers are engineered to withstand drops, spills, dust and grime, and to perform in the harshest environments. Rugged reliability, low cost of ownership and accolades from reviewers are just a few of the reasons why Toughbook computers keep winning over the world's toughest users. Click here to learn more.  Mobile Tech 1.   Google Glass Raises Privacy Concerns 2.   IDC: Windows Phone Now in 3rd Place 3.   Intel Going Mobile with Its New CEO 4.   Google Bets Its Empty Wallet on Gmail 5.   Stand Turns iPad Into Cash Register Mandatory BYOD Is Catching On Will be required by many within 4 years. Average Rating: Thorsten Heins Predicts Tablet Demise BlackBerry PlayBook may color his view? Average Rating: Google Glass Raises Privacy Concerns House privacy panel wants answers. Average Rating:

Product Information and Resources for Technology You Can Use To Boost Your Business BYOD & MDM   Build a business case for a BYOD program. CRM Systems   Free Download: Understanding the Voice of the Customer   Unlock the potential in your people with Microsoft Dynamics   How Microsoft Dynamics helped mobilize retail businesses   2 million CRM success stories and counting...   Experience CRM and Business Success today with Salesforce.com.   Free Download: Understanding the Voice of the Customer   Optimize CRM with Data Quality Management. More from Trillium Cloud & Virtualization   Riverbed Stingray Traffic Manager on Amazon Web Services Contact Centers   Unlock the potential in your people with Microsoft Dynamics Customer Data   Free Download: Understanding the Voice of the Customer   See how you can benefit from Microsoft Dynamics   Free Download: Understanding the Voice of the Customer Customer Service   Improve your customer relationships with Microsoft Dynamics   2 million CRM success stories and counting...   Unlock the potential in your people with Microsoft Dynamics Data Security   Simpana® 10 software: an exponential leap forward Enterprise Hardware   The 2013 Toughpad™ tablets. Rugged, secure and built for business.   Rugged and reliable Panasonic Toughbook® mobile computers.   The best document scanner for you? Try KODAK's scanner selector   APC makes it easy for you to focus on business growth, not downtime. Enterprise I.T.   Brocade's mission: Making networks easier to deploy, manage, and scale.   11 Challenges Solved by Infrastructure for Small IT Environments Enterprise Software   Get critical data off paper and into SharePoint! Watch the video.   Simpana® 10 software: an exponential leap forward Hardware   The 2013 Toughpad™ tablets. Rugged, secure and built for business.   Rugged and reliable Panasonic Toughbook® mobile computers.   Rugged and reliable Panasonic Toughbook® mobile computers Innovation   The best document scanner for you? Try KODAK's scanner selector   Brocade's mission: Making networks easier to deploy, manage, and scale. Laptops & Tablets   Rugged and reliable Panasonic Toughbook® mobile computers. Mobile Apps   Build great mobile apps that drive engagement. Mobile Tech   Rugged and reliable Panasonic Toughbook® mobile computers Small Business   The best document scanner for you? Try KODAK's scanner selector Tech Trends   APC makes it easy for you to focus on business growth, not downtime.

Network Security Spotlight

Syrian Electronic Army Hacks Financial Times The Financial Times is the latest victim of the Syrian Electronic Army, a group that supports Syrian President Bashar al-Assad. The U.K.-based newspaper said a blog and its Twitter accounts were hacked.   Patch Tuesday Hyper Focuses on IE 8 Microsoft on Tuesday issued 10 security bulletins that fix 33 vulnerabilities. These updates include MS13-038, which will address the Internet Explorer 8 issue described in Security Advisory 2847140.   Surge of Venture Capital Buoys Tech Security Sector With companies and governments spending billions to repel cyberthreats, a surge of venture capital is pouring into companies developing cybersecurity technologies, the front line of the conflict.

Enterprise Hardware Spotlight

U.S. Defense Department Gives iOS 6 Security OK In a vote of confidence for Apple's iOS devices, the Defense Department has given the all-clear for employees to use iPads and iPhones for work. But only those running iOS 6, and only if issued by the government.   Cisco Surges After Profit Exceeds Analysts' Estimates Networking equipment giant Cisco's net income jumped 14 percent in the latest quarter as revenue at all four of its divisions rose for the first time in a year and a half, as tech spending increases.   HP and SAP Team To Advance HANA Database Technology The two tech leaders are working on a system that SAP says could fundamentally change the database market. HANA is SAP's technology that keeps data in-memory, for super fast processing.

Mobile Enterprise Spotlight

Google Glass Raises Congressional Privacy Concerns The buzz around Google Glass continues, but it's not all good. Some in Congress have questions. "We are curious whether this new technology could infringe on the privacy of average Americans," their letter to Google says.   Windows Phone Now No. 3 in Market, BlackBerry No. 4 Has Microsoft Phone moved into a coveted though distant third place for smartphone platforms behind Google's Android and Apple's iOS? A new report says yes, while BlackBerry has slipped to No. 4.   Intel Going Mobile with Its New CEO In his first speech as Intel's CEO, Brian Krzanich said he plans to focus on beefing up Intel's presence in mobility. The next step: a world tour showing mobile devices based on Intel chips, from PCs to phones and tablets.

Enterprise Technology Spotlight

HP and SAP Team To Advance HANA Database Technology The two tech leaders are working on a system that SAP says could fundamentally change the database market. HANA is SAP's technology that keeps data in-memory, for super fast processing.   Cloud Computing Gains Another Competitor with Google Amazon Web Services and Microsoft Azure now have a full-on rival in Google, with its I/O announcement that it is opening its hosted Compute Engine environment for virtual machines to all comers.   Hackers' New Tool of Choice: Smartphones Smartphones are increasingly popular not only with consumers, but with thieves who see the devices as another way to tap into bank accounts and other sensitive information, experts say.

Navigation NewsFactor Network Home/Top News | Enterprise I.T. | Cloud & Virtualization | Applications | Unified Communications | Mobile Tech | Hardware | Business Intelligence World Wide Web | Network Security | Data Storage | Small Business | Microsoft/Windows | Apple/Mac | Linux/Open Source | Personal Tech Press Releases NewsFactor Network Enterprise I.T. Sites NewsFactor Technology News | Enterprise Security Today | CRM Daily NewsFactor Business and Innovation Sites Sci-Tech Today | NewsFactor Business Report NewsFactor Services FreeNewsFeed | Free Newsletters | About NewsFactor Network | How To Contact Us | Article Reprints | Careers @ NewsFactor | Services for PR Pros | Top Tech Wire | How To Advertise Privacy Policy | Terms of Service © Copyright 2000-2013 NewsFactor Network. All rights reserved. Article rating technology by Blogowogo. Member of Accuserve Ad Network.